Features

Features

Search channels, messages, templates, resources
Free Read-Only5/1/2026, 5:27:30 PM
Java Admin Functions259

21 console areas

Contract Coverage100%

all functions contracted

Wired111

live-backed or executable adapters

Planned141

explicit contracts still to implement

Missing0

must stay at zero

All Java Administrator Functions

Every feature has a UI surface, risk model, guard list, and adapter state. This is the no-missing-functions board.

pass
Server Profiles, Login, And Session8 functions · 4 wired · 4 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
AUTH-001serverConnect to a Mirth server by URLManage server profiles with API URL, environment, TLS mode, health, and active targetAPI wiredsecurity/serverswiredPOST /api/mirth/server-profilesRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
AUTH-002serverManage multiple Administrator launcher connectionsPer-user multi-server profile list with quick switching across test/stage/prod/DRAPI wiredsecurity/serverswiredPOST /api/mirth/server-profilesRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
AUTH-003serverLogin to selected serverServer-side credential/token exchange; no Mirth passwords in browser storageNot startedsecurity/serversplannedPOST /api/mirth/server-profiles/{serverId}/activateRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
AUTH-004userFirst-login/password-change flowsSecure password setup/change flow where supported by target serverNot startedsecurity/serversplannedPOST /api/mirth/actions/AUTH-004RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
AUTH-005userSession timeout/logoffExplicit logout, idle timeout, session expiration handling, upstream 401 shown in-pageNot startedsecurity/serversplannedPOST /api/mirth/actions/AUTH-005RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
AUTH-006serverTLS/certificate handlingTrust policy per server profile; cert warnings surfaced without browser secret leakageAPI wiredsecurity/serverswiredPOST /api/mirth/server-profilesRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
AUTH-007userPermissions and rolesRBAC loaded per active server and enforced on every actionNot startedsecurity/serversplannedPOST /api/mirth/actions/AUTH-007RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
AUTH-008serverActive contextActive server, environment, user, write mode, and connection state visible globallyAPI wiredsecurity/serverswiredPOST /api/mirth/server-profiles/{serverId}/activateRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
App Shell, Tables, And Operator Ergonomics8 functions · 0 wired · 8 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
UX-001serverLeft navigation/task panelFull desktop console shell with monitor, management, edit, settings, and admin areasScaffoldedwrite/plannedGET /api/mirth/actions/UX-001RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
UX-002serverContext-sensitive tasksPage/selection-aware action rail or toolbar matching available operationsScaffoldedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
UX-003serverSort/filter/select tablesSortable, filterable, keyboard-friendly tables with multi-select and preserved selectionNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
UX-004serverShow/hide columnsColumn picker and saved user preferences per tableNot startedwrite/plannedPOST /api/mirth/actions/UX-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
UX-005serverTable copy/export ergonomicsCopy selected cells/rows and export visible/search result data where appropriateNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
UX-006serverNotificationsNotification center for server/product notices and unread stateNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
UX-007serverUser API docs linkOpen target server User API/Javadocs or local equivalentNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
UX-008serverClient/REST API docs linkOpen target server REST/API docs or local equivalentNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
Dashboard / Monitor18 functions · 12 wired · 6 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
MON-001serverDashboard channel tableLive deployed-channel table by active serverScaffoldedread/wiredGET /api/channels/statusesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-002serverChannel and connector stateNormalize deployed, started, paused, stopped, undeployed, warning, error, unknownScaffoldedread/wiredGET /api/channels/statusesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-003serverCurrent and lifetime statisticsReceived, sent, filtered, queued, errored by channel and connector, with current/lifetime modeAPI wiredread/wiredGET /api/channels/statisticsRBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-004serverAuto refreshPolling/SSE/WebSocket refresh with stale-state indicator and user interval settingNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-005serverManual refreshRefresh current dashboard/table/log/global-map tabsScaffoldedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-006serverChannel/name/tag filteringFilter dashboard by tag, channel name, partial name, and multi-criteriaNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-007serverServer log tabView, pause/resume, clear local view, search, and export server log streamNot starteddeploy/plannedPOST /api/mirth/actions/MON-007RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MON-008serverConnection log tabView, pause/resume, clear local view, search, and export connection log streamNot starteddeploy/plannedPOST /api/mirth/actions/MON-008RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MON-009serverGlobal maps tabView global map and per-channel global channel map entries with long-value inspectionNot startedread/plannedGET /RBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-010channelSend message taskSend a payload to a selected channel with source/metadata options and auditAPI wiredwrite/wiredPOST /api/channels/{channelId}/messagesRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
MON-011channelView messages taskOpen message browser scoped to selected channelScaffoldedread/wiredGET /api/channels/{channelId}/messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MON-012channelRemove all messagesDestructive purge of channel message/attachment data with hard confirmation and auditAPI wireddestructive/wiredDELETE /api/channels/{channelId}/messages/_removeAllRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
MON-013channelClear statisticsReset current/lifetime statistics at channel/connector scope with auditAPI wireddestructive/wiredPOST /api/channels/_clearStatisticsRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
MON-014channelStart/resumeStart selected channel(s)/connector(s), honoring dependency workflowAPI wireddeploy/wiredPOST /api/channels/{channelId}/_startRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MON-015channelPausePause selected channel(s), honoring dependency workflowAPI wireddeploy/wiredPOST /api/channels/{channelId}/_pauseRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MON-016channelStopGracefully stop selected channel(s)/connector(s), honoring dependency workflowAPI wireddeploy/wiredPOST /api/channels/{channelId}/_stopRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MON-017channelHaltImmediate halt behavior with unfinished-message warning and auditAPI wireddeploy/wiredPOST /api/channels/{channelId}/_haltRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MON-018channelUndeploy from dashboardUndeploy selected deployed channel(s), honoring dependency workflowAPI wireddeploy/wiredPOST /api/channels/{channelId}/_undeployRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
Message Browser24 functions · 13 wired · 11 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
MSG-001channelNavigate from dashboard/channelsOpen message browser scoped to channel/server contextScaffoldedread/messageswiredGET /api/channels/{channelId}/messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-002channelSearch messagesSearch by channel, date range, status, connector, message ID, metadata, and contentAPI wiredread/messageswiredGET /api/channels/{channelId}/messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-003messageAdvanced search filtersBoolean/filter builder for content, metadata, connector, status, and case-insensitive operatorsScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-004channelCount and paginationCount results, page through stable result sets, preserve max message ID behaviorAPI wiredread/messageswiredGET /api/channels/{channelId}/messages/countRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-005messageRefresh search pageRefresh current page without pulling newer messages into the result set unexpectedlyScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-006messageMetadata tableMessage result table with standard metadata columns and custom metadata columnsScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-007messageAdd/remove metadata columnsUser-customizable metadata result columnsScaffoldeddestructive/messagesplannedGET /api/mirth/actions/MSG-007RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
MSG-008messageContent tabRaw, processed raw, transformed, encoded, sent, response, and response-transformed content tabsAPI wiredread/messageswiredGET /api/channels/{channelId}/messages/{messageId}RBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-009messageContent formattingPretty print XML/JSON and preserve raw/plain viewsScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-010messageMappings tabShow connector/channel/source/response map content for selected messageScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-011messageErrors tabShow error details, type/category, exception message, stack/source context where availableScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-012messageAttachments tabAttachment table with metadata, size, type, and download/export actionsAPI wiredread/messageswiredGET /api/channels/{channelId}/messages/{messageId}/attachmentsRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-013messageText attachment viewerRender text attachments safelyScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-014messageImage attachment viewerRender image attachments safelyScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-015messageDICOM attachment viewerRender/download DICOM attachment with metadata-safe viewer or fallback downloadScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-016messagePDF attachment viewerRender/download PDF attachment safelyScaffoldedread/messagesplannedGET /messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-017channelImport messagesImport messages from file into channel message data with audit and clear non-processing warningAPI wiredwrite/messageswiredPOST /api/channels/{channelId}/messages/_importRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
MSG-018channelExport resultsExport all search matches, not just current page, with format/password options where supportedAPI wiredsecurity/messageswiredPOST /api/channels/{channelId}/messages/_exportUsingFilterRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
MSG-019channelRemove resultsDestructive remove of selected/search-result messages with hard confirmation and auditAPI wireddestructive/messageswiredPOST /api/channels/{channelId}/messages/_removeRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
MSG-020channelRemove all messagesDestructive channel-wide purge from browser context with hard confirmation and auditAPI wireddestructive/messageswiredDELETE /api/channels/{channelId}/messages/_removeAllRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
MSG-021channelReprocess resultsReprocess all selected/search-result messages with idempotency and auditAPI wireddeploy/messageswiredPOST /api/channels/{channelId}/messages/_reprocessWithFilterRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MSG-022messageReprocess messageReprocess a single message/connector message with target optionsAPI wireddeploy/messageswiredPOST /api/channels/{channelId}/messages/{messageId}/_reprocessRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MSG-023messageExport attachmentExport/download selected attachmentAPI wiredread/messageswiredGET /api/channels/{channelId}/messages/{messageId}/attachments/{attachmentId}RBAC permission check · audit log entry for PHI/sensitive reads where needed
MSG-024channelSend message from browserSend new payload to current channel from message browserAPI wiredwrite/messageswiredPOST /api/channels/{channelId}/messagesRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
Alerts11 functions · 6 wired · 4 planned · 1 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
ALT-001serverAlerts tableView enabled state, alert name/ID, and trigger/action countersScaffoldedread/eventswiredGET /api/alertsRBAC permission check · audit log entry for PHI/sensitive reads where needed
ALT-002serverRefresh alertsManual and auto-refresh alert stateScaffoldedread/eventswiredGET /api/alerts/statusesRBAC permission check · audit log entry for PHI/sensitive reads where needed
ALT-003alertNew/edit/delete alertFull alert CRUD with guarded destructive deleteAPI wireddestructive/eventswiredPUT /api/alerts/{alertId}RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
ALT-004alertImport/export alertsImport one alert, export selected/all alerts as XMLAPI wiredwrite/eventswiredPOST /api/alertsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
ALT-005alertEnable/disable alertGuarded alert activation/deactivation with auditAPI wiredwrite/eventswiredPOST /api/alerts/{alertId}/{alertOperation}RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
ALT-006alertError trigger configConfigure error types, categories, regex, and channel scopeScaffoldedread/eventsplannedGET /eventsRBAC permission check · audit log entry for PHI/sensitive reads where needed
ALT-007alertEnabled channelsSelect all/specific channels the alert applies toScaffoldedread/eventsplannedGET /eventsRBAC permission check · audit log entry for PHI/sensitive reads where needed
ALT-008alertAlert actionsConfigure channel dispatch, email, user, and role actions where supportedScaffoldedsecurity/eventsplannedGET /api/mirth/actions/ALT-008RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
ALT-009alertAlert templates/variablesSubject/body/template editor with supported variables and validationScaffoldedwrite/eventsplannedGET /api/mirth/actions/ALT-009RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
ALT-010alertSave/export from edit viewSave current alert and export current alert XMLAPI wiredwrite/eventswiredPUT /api/alerts/{alertId}RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
ALT-011alertAdvanced alerting extensionMetric/escalation/schedule/throttle panels when extension existsExtension-dependentextension/eventsextensionPOST /api/mirth/actions/ALT-011RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
Events And Audit6 functions · 4 wired · 2 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
EVT-001serverEvents tableView user/system events for active serverScaffoldedread/eventswiredGET /api/eventsRBAC permission check · audit log entry for PHI/sensitive reads where needed
EVT-002eventEvent metadata/attributesShow event metadata and attribute detailsScaffoldedread/eventsplannedGET /eventsRBAC permission check · audit log entry for PHI/sensitive reads where needed
EVT-003eventPHI event visibilityPermission-aware PHI event display and redactionScaffoldedsecurity/eventsplannedGET /api/mirth/actions/EVT-003RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
EVT-004serverEvent searchSearch by date, user, type, outcome, metadata, and advanced filtersAPI wiredread/eventswiredGET /api/eventsRBAC permission check · audit log entry for PHI/sensitive reads where needed
EVT-005serverExport all eventsExport event history with audit/reporting controlsAPI wiredread/eventswiredPOST /api/events/_exportRBAC permission check · audit log entry for PHI/sensitive reads where needed
EVT-006serverWeb console audit trailStore this app's own read/write/deploy/approval actions in a database-backed immutable audit ledger with operator/server identity, references, reporting, and exportsAPI wireddeploy/eventswiredPOST /api/mirth/actionsRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
Channels And Groups23 functions · 13 wired · 9 planned · 1 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
CH-001serverChannel tableList channels with ID, name, revision, deployed/enabled state, group, tags, invalid stateScaffoldedread/builderwiredGET /api/channelsRBAC permission check · audit log entry for PHI/sensitive reads where needed
CH-002serverChannel groups displayShow/hide groups, default group, group rows, group membershipNot startedread/builderwiredGET /api/channelgroupsRBAC permission check · audit log entry for PHI/sensitive reads where needed
CH-003channelTag display and filteringFilter and display channels by name/tag with same semantics across monitor/channelsNot startedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
CH-004channelDrag/drop channel groupingAssign channels to groups using UI actions and accessible fallbackNot startedwrite/builderplannedPOST /api/mirth/actions/CH-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-005channelDrag/drop XML importImport channel/group XML files, including multi-file importNot startedwrite/builderplannedPOST /api/mirth/actions/CH-005RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-006channelGet channel name/IDCopy channel name/ID quicklyNot startedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
CH-007serverRefresh channelsRefresh channel tableScaffoldedread/builderwiredGET /api/channelsRBAC permission check · audit log entry for PHI/sensitive reads where needed
CH-008serverRedeploy allUndeploy all then deploy enabled channels with dependency and audit workflowAPI wireddeploy/builderwiredPOST /api/channels/_redeployAllRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
CH-009channelDeploy channel/groupDeploy selected channels or group with diff, snapshot, note, dependency handlingAPI wireddeploy/builderwiredPOST /api/channels/{channelId}/_deployRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
CH-010channelDebug channelDeploy selected channel in debug mode for selected scriptsScaffoldeddeploy/channelsplannedGET /api/mirth/actions/CH-010RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
CH-011channelNew channelCreate draft channel before saving to serverNot startedwrite/channelsplannedPOST /api/mirth/actions/CH-011RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-012channelImport channelImport channel XML, handle name collisions, optionally include code template librariesAPI wiredwrite/channelswiredPOST /api/channelsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-013channelExport selected/all channelsExport channel XML with optional linked code template librariesAPI wiredread/channelswiredGET /api/channels/{channelId}RBAC permission check · audit log entry for PHI/sensitive reads where needed
CH-014channelDelete channelDestructive delete with message/attachment deletion warning, snapshot, confirmation, auditAPI wireddestructive/channelswiredDELETE /api/channels/{channelId}RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
CH-015channelClone channelClone selected channel into unsaved draft with unique-name promptNot startedwrite/channelsplannedPOST /api/mirth/actions/CH-015RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-016channelEdit channelOpen channel Studio for selected channelScaffoldedwrite/channelswiredGET /api/channels/{channelId}RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-017channelEnable/disable channelToggle deploy eligibility without confusing current deployed stateAPI wireddeploy/channelswiredPOST /api/channels/{channelId}/enabled/{enabled}RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
CH-018channelView channel messagesOpen message browser for selected channelScaffoldedread/channelswiredGET /api/channels/{channelId}/messagesRBAC permission check · audit log entry for PHI/sensitive reads where needed
CH-019channelView channel historyShow installed channel history/version extension when availableExtension-dependentextension/channelsextensionPOST /api/mirth/actions/CH-019RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
CH-020channel-groupSave group changesPersist group reorder/membership/detail changesAPI wiredwrite/builderwiredPOST /api/channelgroups/_bulkUpdateRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-021channelAssign to groupMove selected channels to groupNot startedwrite/builderplannedPOST /api/mirth/actions/CH-021RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CH-022channel-groupNew/edit/delete groupChannel group CRUD with default-group behaviorAPI wireddestructive/builderwiredPOST /api/channelgroups/_bulkUpdateRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
CH-023channel-groupImport/export groupsImport/export selected/all channel group XML, with code-template optionNot startedwrite/builderplannedGET /api/channelgroupsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
Channel Studio / Edit Channel23 functions · 2 wired · 21 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
EDIT-001channelSummary tabEdit channel name, ID, revision, enabled flag, tags, descriptionScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-001RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-002channelData type windowSet inbound/outbound data types and properties with bulk edit modeScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-002RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-003channelDependencies windowLink code template libraries, library resources, deploy/start dependencies, stop/pause/undeploy behaviorScaffoldeddeploy/builderplannedGET /api/mirth/actions/EDIT-003RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
EDIT-004channelAttachment handlersConfigure entire-message, regex, DICOM, JavaScript, custom handlers, extraction/reattachment/MIME rulesScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-005channelMessage storage settingsComplete message-storage slider/options and encryption/persistence settingsScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-005RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-006channelMessage pruning settingsChannel-level pruning/retention settingsScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-006RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-007channelCustom metadata columnsAdd/edit/remove metadata columns and search integrationScaffoldeddestructive/builderplannedGET /api/mirth/actions/EDIT-007RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
EDIT-008channelSource tabChoose source connector and edit source connector settingsScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-008RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-009channelListener settingsListener binding/port/protocol settings where applicableScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-009RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-010channelPolling settingsInterval, time, cron, and advanced polling settingsScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-010RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-011channelSource HTTP authNone/basic/digest/JavaScript/custom class/OAuth token verification where supportedScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-011RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-012channelSource connector propertiesDynamic source connector property rendererScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-012RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-013channelDestinations tabDestination table with status, name, ID, type, chain, orderScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-013RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-014channelDestination CRUD/orderNew/delete/clone/enable/disable/move destinationsScaffoldeddestructive/builderplannedGET /api/mirth/actions/EDIT-014RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
EDIT-015channelDestination queue settingsQueue mode, retry count/interval, rotation, regeneration, include filter/transformer, threads, assignment, bufferScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-015RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-016channelDestination response handlingResponse validation and attachment reattachment settingsScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-016RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-017channelDestination mappings panelDrag/drop standard variables, mapper variables, and templates into connector fieldsScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-017RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-018channelDestination response transformerEdit response transformer for selected destinationScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-018RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-019channelChannel scriptsDeploy, undeploy, preprocessor, postprocessor channel scriptsScaffoldeddeploy/builderplannedGET /api/mirth/actions/EDIT-019RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
EDIT-020channelSave changesSave new channel revision only when changedAPI wiredwrite/builderwiredPUT /api/channels/{channelId}RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-021channelValidate connectorValidate current connector properties and script syntaxScaffoldedwrite/builderplannedGET /api/mirth/actions/EDIT-021RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-022channelImport/export connectorImport/export source or destination connector XML including filter/transformerNot startedwrite/builderplannedPOST /api/mirth/actions/EDIT-022RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
EDIT-023channelExport/deploy/debug from editorExport current channel, deploy current channel, debug current channelAPI wireddeploy/builderwiredGET /api/channels/{channelId}RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
Data Types10 functions · 0 wired · 10 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
DT-001channelDelimited text data typeInbound/outbound property editor and batch optionsScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-001RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-002channelDICOM data typeInbound/outbound property editor and attachment considerationsScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-002RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-003channelEDI/X12 data typeInbound/outbound property editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-003RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-004channelHL7 v2.x data typeParser/serializer/batch property editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-005channelHL7 v3.x data typeParser/serializer property editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-005RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-006channelJSON data typeParser/serializer property editor and formatting supportScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-006RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-007channelNCPDP data typeParser/serializer property editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-007RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-008channelRaw data typeRaw inbound/outbound property editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-008RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-009channelXML data typeXML parser/serializer property editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-009RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DT-010channelBatch processingBatch settings and JavaScript batch script editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DT-010RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
Built-In Source Connector Types10 functions · 0 wired · 9 planned · 1 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
SRC-001channelChannel ReaderFull property editor and source map variable supportScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-001RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-002channelDICOM ListenerFull property editor and DICOM listener-specific validationScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-002RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-003channelDatabase ReaderSQL/driver/resource editor, poll schedule, driver management hooksScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-003RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-004channelFile ReaderFile/FTP/SFTP/SMB/S3 editor, post-processing, polling, encodingScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-005channelHTTP ListenerListener endpoint, response, auth, header/body handlingScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
SRC-006channelJMS ListenerJMS connection/template editorScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-006RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-007channelJavaScript ReaderJavaScript reader editor and return-value handlingScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-007RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-008channelTCP ListenerBasic/MLLP transmission mode editor, byte settings, source map variablesScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-008RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-009channelWeb Service ListenerSOAP/web-service listener property editorScaffoldedwrite/builderplannedGET /api/mirth/actions/SRC-009RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SRC-010channelExtension source connectorsDynamic schemas for installed source connector extensionsExtension-dependentextension/builderextensionPOST /api/mirth/actions/SRC-010RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
Built-In Destination Connector Types12 functions · 0 wired · 11 planned · 1 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
DEST-001channelChannel WriterFull property editor and target channel validationScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-001RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-002channelDICOM SenderDICOM send property editor and response handlingScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-002RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-003channelDatabase WriterSQL/resource/driver editor with safe secret handlingScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-003RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-004channelDocument WriterDocument template/output editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-005channelFile WriterFile/FTP/SFTP/SMB/S3 output editor and templatesScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-005RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-006channelHTTP SenderMethod/URL/headers/body/auth/response editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-006RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-007channelJMS SenderJMS connection/template editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-007RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-008channelJavaScript WriterJavaScript writer editor and return-value handlingScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-008RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-009channelSMTP SenderSMTP/email editor with server settings integrationScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-009RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-010channelTCP SenderBasic/MLLP transmission editor and response optionsScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-010RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-011channelWeb Service SenderSOAP/web-service sender editorScaffoldedwrite/builderplannedGET /api/mirth/actions/DEST-011RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
DEST-012channelExtension destination connectorsDynamic schemas for installed destination connector extensionsExtension-dependentextension/builderextensionPOST /api/mirth/actions/DEST-012RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
Filters, Transformers, And Response Transformers16 functions · 0 wired · 16 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
FT-001channelMessage templates tabInbound/outbound templates, data type editing, template specificationScaffoldedwrite/builderplannedGET /api/mirth/actions/FT-001RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
FT-002channelMessage trees tabParse message/template trees, filter nodes, expand/collapse, drag/drop valuesScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
FT-003channelReference tabVariables, helper methods, code templates, drag/drop into editorScaffoldedwrite/builderplannedGET /api/mirth/actions/FT-003RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
FT-004channelCreate rule/step from treeCreate rule builder, mapper, message builder steps from selected nodeScaffoldedwrite/builderplannedGET /api/mirth/actions/FT-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
FT-005channelFilter rule tableAdd/delete/reorder rules with enabled/disabled state and selectionScaffoldeddestructive/builderplannedGET /api/mirth/actions/FT-005RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
FT-006channelRule typesRule builder, JavaScript, external script, iteratorScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
FT-007channelTransformer step tableAdd/delete/reorder steps with enabled/disabled state and selectionScaffoldeddestructive/builderplannedGET /api/mirth/actions/FT-007RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
FT-008channelStep typesMapper, message builder, JavaScript, external script, XSLT, destination set filter, iteratorScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
FT-009channelIteratorsAssign/remove nested rules/steps to/from iteratorsScaffoldeddestructive/builderplannedGET /api/mirth/actions/FT-009RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
FT-010channelGenerated script viewView generated script for rules/steps/iterators without editing itScaffoldedwrite/builderplannedGET /api/mirth/actions/FT-010RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
FT-011channelImport/export filtersImport append/replace and export filter XMLScaffoldedwrite/builderplannedGET /api/mirth/actions/FT-011RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
FT-012channelImport/export transformersImport append/replace and export transformer XMLScaffoldedwrite/builderplannedGET /api/mirth/actions/FT-012RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
FT-013channelValidate filter/ruleValidate full filter and selected ruleScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
FT-014channelValidate transformer/stepValidate full transformer and selected stepScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
FT-015channelMove rule/step up/downPreserve iterator semantics while reorderingScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
FT-016channelResponse transformer scenariosModify destination response and common response-handling patternsScaffoldedread/builderplannedGET /builderRBAC permission check · audit log entry for PHI/sensitive reads where needed
Script IDE, JavaScript Tooling, And Debugger9 functions · 2 wired · 7 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
JS-001serverJavaScript editorSyntax highlighting, line numbers, folding, selection, search/find/replaceAPI wiredwrite/codewiredGET /codeRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
JS-002code-templateContext menuEditor context menu actions matching common Java client operationsNot startedwrite/codeplannedPOST /api/mirth/actions/JS-002RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
JS-003code-templateAuto-completionMirth variables, map APIs, built-in templates, JSDoc templates, user templatesNot startedread/codeplannedGET /codeRBAC permission check · audit log entry for PHI/sensitive reads where needed
JS-004code-templateShortcut remapping/preferencesUser-specific editor shortcut and editor behavior preferencesNot startedwrite/codeplannedPOST /api/mirth/actions/JS-004RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
JS-005serverVariable maps referenceconnectorMap, channelMap, sourceMap, responseMap, globalChannelMap, globalMap, configurationMap lookup helpScaffoldedread/codewiredGET /codeRBAC permission check · audit log entry for PHI/sensitive reads where needed
JS-006code-templateAttachment functions referenceAttachment helper functions/classes and examples in reference panelNot startedread/codeplannedGET /codeRBAC permission check · audit log entry for PHI/sensitive reads where needed
JS-007code-templateUser API/Javadocs referenceOpen/inline target server user API docsNot startedread/codeplannedGET /codeRBAC permission check · audit log entry for PHI/sensitive reads where needed
JS-008code-templateDebuggerScript debugger window/workflow: deploy in debug mode, break/step/inspect where supportedScaffoldeddeploy/codeplannedGET /api/mirth/actions/JS-008RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
JS-009code-templateDebugger menus/actionsFile/edit/debug/window actions or web equivalentsScaffoldedwrite/codeplannedGET /api/mirth/actions/JS-009RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
Global Scripts7 functions · 7 wired · 0 planned · 0 extensionwired/extension
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
GS-001serverEdit global deploy scriptGlobal deploy script editor with validationAPI wireddeploy/codewiredGET /api/server/globalScriptsRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
GS-002serverEdit global undeploy scriptGlobal undeploy script editor with validationAPI wireddeploy/codewiredGET /api/server/globalScriptsRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
GS-003serverEdit global preprocessorGlobal preprocessor editor and precedence explanationAPI wiredwrite/codewiredGET /api/server/globalScriptsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
GS-004serverEdit global postprocessorGlobal postprocessor editor and response handlingAPI wiredwrite/codewiredGET /api/server/globalScriptsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
GS-005serverSave scriptsSave all global scripts with audit and snapshotAPI wiredwrite/codewiredPUT /api/server/globalScriptsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
GS-006serverValidate scriptValidate current global scriptAPI wiredread/codewiredGET /codeRBAC permission check · audit log entry for PHI/sensitive reads where needed
GS-007serverImport/export scriptsImport/export all global scripts XMLAPI wiredwrite/codewiredGET /api/server/globalScriptsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
Code Templates8 functions · 5 wired · 3 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
CT-001serverLibrary tableCreate/edit/delete libraries, revisions, descriptionsScaffoldeddestructive/templateswiredGET /api/codeTemplateLibrariesRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
CT-002code-templateLink libraries to channelsChannel/library linking with impact graphScaffoldedread/templatesplannedGET /templatesRBAC permission check · audit log entry for PHI/sensitive reads where needed
CT-003code-templateTemplate editorFunction/snippet/template editor with revision trackingAPI wiredwrite/templateswiredGET /api/codeTemplates/{codeTemplateId}RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CT-004code-templateTemplate contextsContext selector for where template is availableAPI wiredread/templateswiredGET /api/codeTemplatesRBAC permission check · audit log entry for PHI/sensitive reads where needed
CT-005code-templateJSDoc supportJSDoc parsing/update and autocomplete integrationScaffoldedread/templatesplannedGET /api/codeTemplatesRBAC permission check · audit log entry for PHI/sensitive reads where needed
CT-006code-templateRefresh/save changesRefresh with unsaved-change prompt, save templates/libraries with revision incrementAPI wiredwrite/templateswiredPUT /api/codeTemplateLibrariesRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CT-007code-templateImport/export libraries/templatesImport/export code templates and libraries XMLAPI wiredwrite/templateswiredGET /api/codeTemplatesRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
CT-008code-templateUsage searchShow channels/scripts that reference template/libraryNot startedread/templatesplannedGET /api/channelsRBAC permission check · audit log entry for PHI/sensitive reads where needed
Users, Roles, And Access7 functions · 4 wired · 1 planned · 2 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
USER-001serverUsers tableView username, name, email, phone, org, role/business fields, last login, descriptionScaffoldedsecurity/adminwiredGET /api/usersRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
USER-002serverRefresh usersRefresh users tableScaffoldedsecurity/adminwiredGET /api/usersRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
USER-003userNew/edit userUser create/edit form with validation and auditAPI wiredsecurity/adminwiredPOST /api/usersRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
USER-004userDelete userDestructive user removal with confirmation and auditAPI wireddestructive/adminwiredDELETE /api/users/{userId}RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
USER-005userRoles/permissionsRole-based operation restrictions where supported/installedScaffoldedsecurity/adminplannedGET /api/mirth/actions/USER-005RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
USER-006userExternal auth/LDAPLDAP authorization panels where extension existsExtension-dependentextension/adminextensionPOST /api/mirth/actions/USER-006RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
USER-007userMFAMFA enrollment/admin panels where extension existsExtension-dependentextension/adminextensionPOST /api/mirth/actions/USER-007RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
Settings27 functions · 22 wired · 5 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
SET-001serverServer settings/generalServer-level environment/general settings editorAPI wiredwrite/settingswiredGET /api/server/settingsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-002serverServer channel settingsDefault channel behavior/settings editorAPI wiredwrite/settingswiredPUT /api/server/settingsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-003serverServer email/SMTP settingsSMTP settings editor with auth modes supported by target serverAPI wiredwrite/settingswiredPUT /api/server/settingsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-004serverServer notification settingsNotification/news settings editorAPI wiredwrite/settingswiredPUT /api/server/updateSettingsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-005serverBackup configExport server configuration snapshot with exclusions clearly shownAPI wiredread/settingswiredGET /api/server/configurationRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-006serverRestore configDestructive restore workflow with snapshot, diff, confirmation, and auditAPI wireddestructive/settingswiredPUT /api/server/configurationRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
SET-007serverClear all statisticsServer-wide statistics reset with confirmation and auditAPI wireddestructive/settingswiredPOST /api/channels/_clearAllStatisticsRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
SET-008serverAdministrator system preferencesWeb equivalent for system preferencesScaffoldedread/settingsplannedGET /settingsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-009serverAdministrator user preferencesPer-user UI/export/import preferencesScaffoldedwrite/settingsplannedGET /api/mirth/actions/SET-009RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-010serverCode editor preferencesEditor settings, shortcuts, autocomplete behaviorScaffoldedwrite/settingsplannedGET /api/mirth/actions/SET-010RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-011serverRestore default preferencesReset local/user web preferencesScaffoldedread/settingsplannedGET /settingsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-012serverTags tableAdd/remove tags and view channel assignment stateAPI wireddestructive/settingswiredGET /api/server/channelTagsRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
SET-013serverTag assignmentAssign tags to channels, including partial/indeterminate stateAPI wiredwrite/settingswiredPUT /api/server/channelTagsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-014serverConfiguration mapAdd/edit/remove key/value config map entriesAPI wireddestructive/settingswiredGET /api/server/configurationMapRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
SET-015serverImport/export config mapImport/export map properties with overwrite warningAPI wiredwrite/settingswiredPUT /api/server/configurationMapRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-016database-taskDatabase tasksList database cleanup/optimization tasks and affected channelsAPI wiredread/settingswiredGET /api/databaseTasksRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-017database-taskRun database taskRun selected DB task with risk warning, audit, and progressAPI wiredwrite/settingswiredPOST /api/databaseTasks/{databaseTaskId}/_runRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-018serverResources tableResource list with type, context, and statusScaffoldedread/settingswiredGET /api/server/resourcesRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-019resourceAdd/remove resourceResource CRUD with dependency checksAPI wireddestructive/settingswiredPUT /api/server/resourcesRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
SET-020resourceReload resourceReload resource on server with status/auditAPI wireddeploy/settingswiredPOST /api/server/resources/{resourceId}/_reloadRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
SET-021resourceDirectory resourceDirectory/classpath resource editorAPI wiredwrite/settingswiredGET /api/extensions/directoryresource/resources/{resourceId}/librariesRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-022resourceResource usageLink resources to channels/connectors and show impact graphScaffoldedread/settingsplannedGET /settingsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-023serverData pruner statusShow current pruner state and last/next runAPI wiredread/settingswiredGET /api/extensions/datapruner/statusRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-024serverData pruner scheduleEnable/disable recurring pruning and configure scheduleAPI wiredwrite/settingswiredPUT /api/server/settingsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SET-025serverPrune settingsEvent/message/content pruning settingsAPI wiredread/settingswiredPUT /api/server/settingsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SET-026serverArchive settingsArchive file/folder/zip/password/pattern settingsAPI wiredsecurity/settingswiredPUT /api/server/settingsRBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
SET-027serverPrune now/stop prunerManual prune and stop workflow with confirmation and auditAPI wireddeploy/settingswiredPOST /api/extensions/datapruner/{prunerOperation}RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
Extensions And Plugins8 functions · 7 wired · 0 planned · 1 extensionwired/extension
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
EXT-001extensionInstalled connector tableView connector extensions, status, author, URL, versionAPI wiredextension/resourceswiredGET /api/extensions/connectorsRBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
EXT-002extensionInstalled plugin tableView plugin extensions, status, author, URL, versionAPI wiredextension/resourceswiredGET /api/extensions/pluginsRBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
EXT-003extensionInstall extensionUpload/install extension ZIP with restart warningAPI wiredextension/resourceswiredPOST /api/extensions/_installRBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
EXT-004extensionEnable/disable extensionGuarded enable/disable with restart requirement and dependency impactAPI wiredextension/resourceswiredPOST /api/extensions/{extensionName}/_setEnabledRBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
EXT-005extensionShow propertiesExtension property/details modalAPI wiredextension/resourceswiredGET /api/extensions/{extensionName}/propertiesRBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
EXT-006extensionUninstall extensionDestructive uninstall with restart requirement and dependency impactAPI wiredextension/resourceswiredPOST /api/extensions/_uninstallRBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
EXT-007extensionExtension-specific viewsPlugin architecture for installed extension panelsScaffoldedextension/resourceswiredGET /api/extensions/{extensionName}RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
EXT-008extensionCommercial/optional connectorsFHIR, email reader, serial, ASTM, SSL manager, clustering, advanced alerting, CDR, and other extension panels when installedExtension-dependentextension/resourcesextensionPOST /api/mirth/actions/EXT-008RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning
Import / Export / Backup Safety8 functions · 5 wired · 3 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
IO-001channelChannel XML import/exportRound-trip channel XML without semantic driftAPI wiredwrite/deploymentswiredGET /api/channels/{channelId}RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
IO-002channel-groupGroup XML import/exportRound-trip channel group XML without semantic driftNot startedwrite/deploymentsplannedGET /api/channelgroupsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
IO-003alertAlert XML import/exportRound-trip alert XML without semantic driftNot startedwrite/deploymentsplannedGET /api/alertsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
IO-004serverGlobal script XML import/exportRound-trip script XML without semantic driftAPI wiredwrite/deploymentswiredGET /api/server/globalScriptsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
IO-005code-templateCode template XML import/exportRound-trip code template/library XML without semantic driftAPI wiredwrite/deploymentswiredGET /api/codeTemplatesRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
IO-006serverConnector XML import/exportRound-trip connector XML including filters/transformersNot startedwrite/deploymentsplannedPOST /api/mirth/actions/IO-006RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
IO-007serverServer config backup/restoreBackup/restore server config with documented exclusionsAPI wiredread/deploymentswiredPOST /api/mirth/rollbackRBAC permission check · audit log entry for PHI/sensitive reads where needed
IO-008serverExport diff evidenceCompare exported XML before/after web edits against Java Admin outputAPI wiredwrite/deploymentswiredPOST /api/mirth/actionsRBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
Multi-Server, Promotion, And Safer-Than-Java Enhancements7 functions · 5 wired · 2 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
MS-001serverSingle-server Java sessionMulti-server switcher for existing Mirth, BridgeLink, test, stage, prod, DRScaffoldedread/serverswiredGET /api/mirth/serverRBAC permission check · audit log entry for PHI/sensitive reads where needed
MS-002serverNo built-in promotion flowOriginal dev-to-stage-to-prod promotion workflow with diffs and approvalNot startedread/serversplannedGET /serversRBAC permission check · audit log entry for PHI/sensitive reads where needed
MS-003serverJava save/deploy flowDraft workspace so editing does not touch live Mirth until approvedScaffoldeddeploy/serversplannedGET /api/mirth/actions/MS-003RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MS-004serverManual safety habitsRequired export snapshot before deploy/delete/restoreAPI wireddestructive/serverswiredPOST /api/mirth/actionsRBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note
MS-005serverManual reviewHuman-readable diff plus raw XML diff before deployAPI wireddeploy/serverswiredPOST /api/mirth/actionsRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MS-006serverManual rollbackRollback pointer and restore workflow for channel/template/script changesAPI wireddeploy/serverswiredPOST /api/mirth/rollbackRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
MS-007serverScattered auditDatabase-backed immutable audit with operator/server identity, before/after/diff/rollback refs, hash chain, and JSON/CSV reportingAPI wireddeploy/serverswiredPOST /api/mirth/actionsRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot
Security Hardening9 functions · 0 wired · 9 planned · 0 extensionactive build
IDFunctionStatusRiskSurfaceAdapterGuard Requirements
SEC-001serverAdmin launcher TLS trustPer-profile TLS trust rules; production/DR cannot disable verification without explicit overrideAPI wiredwrite/actionsplannedPOST /api/mirth/actions/SEC-001RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable
SEC-002serverDesktop app boundarySame-origin CSRF cookie/header enforcement on every mutating web APIAPI wiredread/actionsplannedGET /actionsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SEC-003serverLocal credential storageStored server credentials encrypted with an operator-supplied key and `0600` profile filesAPI wiredsecurity/actionsplannedPOST /api/mirth/actions/SEC-003RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
SEC-004serverPHI-aware message readsMessage content/maps/errors/attachment previews redacted unless PHI view permission is enabledAPI wiredsecurity/actionsplannedPOST /api/mirth/actions/SEC-004RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
SEC-005serverPHI export guardAttachment export/download blocked unless PHI export permission is enabledAPI wiredsecurity/actionsplannedPOST /api/mirth/actions/SEC-005RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction
SEC-006serverAbuse throttlingIn-memory read/write API rate limits with `429` and `Retry-After`API wiredread/actionsplannedGET /actionsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SEC-007serverInput validationJSON body size/type checks, bounded strings, safe identifiers, bounded query limitsAPI wiredread/actionsplannedGET /actionsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SEC-008serverSafe logging/auditSecrets and sensitive tokens redacted before audit/log storageAPI wiredread/actionsplannedGET /actionsRBAC permission check · audit log entry for PHI/sensitive reads where needed
SEC-009serverBrowser security headersCSP, frame-deny, nosniff, referrer, permissions-policy, COOP/CORP on app/API responsesAPI wiredsecurity/actionsplannedPOST /api/mirth/actions/SEC-009RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction

Bigger Than Java Admin

These are the add-ons that make the web console more useful than the desktop Administrator instead of just equal to it.

expansion lane

Cross-Environment Compare

Diff dev, test, prod, and BridgeLink channel XML, scripts, resources, users, and alerts before promotion.

planned

Operator Monitoring

Read-only queue pressure, error hotspots, connector watchlist, extension inventory, and control-plane counts on the Monitor page.

wired

AI Change Review

OpenAI or Claude can review JavaScript, transformers, filters, SQL, regex, channel XML, events, and message metadata inside a Mirth-only boundary.

wired

Lab Replay

Replay exported Java Admin fixtures and sample messages into a disposable lab server before production deploy.

planned

Drift Alerts

Detect when a prod channel, alert, resource, user, or template changes outside the approved web-console workflow.

planned

Incident Timeline

Join Mirth events, channel counters, web-console approvals, rollbacks, and operator notes into a single audit timeline.

planned